question

PatriciaRomero-2471 avatar image
0 Votes"
PatriciaRomero-2471 asked JamesHamil-MSFT commented

User acknolegedge sending MFA

We use MFA for Exchange online and Office 365. The conditional access requests the user to MFA every 24h. When the user logins, lest say, at 10AM on Monday; then, at 10AM on Tuesday, he will get a MFA request/call on his phone. This works just fine if the user is in the computer. However, if at 10AM the user is not in the computer, and the computer is ON, he will still get the MFA request/call on his phone.
If the user does not accept the MFA, he/she will need to restart outlook, or office 365 when he returns to his computer, to get prompted again

This is training our users to accept an MFA, even though they have no knowledge of trying to login.

I wonder if there is a solution to this issue. I thought something like the user getting a prompt saying "We will now send a MFA request to your preferred method, do you approve?" and have an accept button or something like that before actually sending the request to the MFA device.

Do you guys know of anything that can help?

azure-ad-multi-factor-authentication
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @PatriciaRomero-2471 , do you still require assistance with this question? If not please mark the appropriate answer as "Verified."

Thank you,
James

0 Votes 0 ·

1 Answer

JamesHamil-MSFT avatar image
0 Votes"
JamesHamil-MSFT answered

Hi @PatriciaRomero-2471 , from my understanding it seems like the computer is trying to automatically sign in for the user even when the user isn't trying to? This is not a normal behavior. Do you have any custom policies enabled that could be causing this? Also, please post your MFA configuration settings so I can see if something looks off.

Thank you,
James

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.